A CAS-based Single-Sign-On service provider for Mozilla web apps.
PHP Python Shell
Switch branches/tags
Nothing to show
Pull request Compare This branch is 69 commits ahead of fwenzel:master.
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Failed to load latest commit information.
bin Automatic update script for staging. Nov 9, 2010
examples/example-php-cas-client markdown cosmetics Aug 24, 2010
requirements Django update Oct 12, 2010
.gitignore ignore vendor dir Oct 12, 2010
__init__.py initial commit: empty django app Apr 9, 2010
manage.py Updated manage.py script to use vendor repository properly. Bug 61051… Nov 17, 2010
settings_local.py-dist Mark all cookies HttpOnly unless specifically defined otherwise. Bug … Aug 9, 2010
urls.py Removing accidental deki url check-in Sep 10, 2010


Secret Squirrel

Secret Squirrel is a Django-based Single Sign-on server. It uses CAS (version 1) as the client-side protocol and can be used with any CAS client library.

Secret Squirrel is a Mozilla project and published under a BSD license.

Getting Started


You need Python 2.6. Also, you probably want to run this application in a virtualenv environment.

Run easy_install pip followed by pip install -r requirements/prod.txt to install the required Python libraries.


The Internet has plenty of of documentation on setting up a Django application with any web server. If you need a wsgi entry point, you can find one in wsgi/squirrel.wsgi.


For each website which you want to SSO enable, you'll need to add them to the whitelist.

  1. http://localhost:8001/admin

    Login with admin user

  2. Client Sites > Click Add

    Note: Don't confuse Sites (i.e., the Django Sites framework) with "Client Sites" (i.e., the SSO Whitelist)... They have very similar inputs and similar names.

  1. Enter Details

    Example: Name: PHP Example App Domain: phpclient.secretsquirr.el Match priority: 0

    Click Save